=============================Linux:
1.用需要免密设置的用户登录serverA
2.配置本机ssh的免密登录:
(1)进入一个路径,比如:cd ~ #进入实例路径/home/db2inst1
(2)执行: ssh-keygen 来产生公钥私钥
#产生公钥私钥对会在当前路径下产生一个文件夹.ssh,下面会有两个文件--公钥秘钥对:
[db2inst1@localhost .ssh]$ pwd
/home/db2inst1/.ssh
[db2inst1@localhost .ssh]$ ls -lrt
total 8
-rw-r--r--. 1 db2inst1 db2iadm1 412 May 8 23:36 id_rsa.pub
-rw-------. 1 db2inst1 db2iadm1 1675 May 8 23:36 id_rsa
3. 把本地公钥复制到需要免密的另一台机器server B上
ssh-copy-id -i ~/.ssh/id_rsa.pub db2inst1@serverB_IP_or_hostname
执行该命令时需要输入密码,成功后再次通过ssh db2inst1@serverB_IP_or_hostname 就不需要密码了。
=======================AIX:
AIX中没有ssh-copy-id,可以自己手工写一个,内容如下:
#!/bin/sh
# Shell script to install your public key on a remote machine
# Takes the remote machine name as an argument.
# Obviously, the remote machine must accept password authentication,
# or one of the other keys in your ssh-agent, for this to work.
ID_FILE="${HOME}/.ssh/id_rsa.pub"
if [ "-i" = "$1" ]; then
shift
# check if we have 2 parameters left, if so the first is the new ID file
if [ -n "$2" ]; then
if expr "$1" : ".*\.pub" > /dev/null ; then
ID_FILE="$1"
else
ID_FILE="$1.pub"
fi
shift # and this should leave $1 as the target name
fi
else
if [ x$SSH_AUTH_SOCK != x ] && ssh-add -L >/dev/null 2>&1; then
GET_ID="$GET_ID ssh-add -L"
fi
fi
if [ -z "`eval $GET_ID`" ] && [ -r "${ID_FILE}" ] ; then
GET_ID="cat \"${ID_FILE}\""
fi
if [ -z "`eval $GET_ID`" ]; then
echo "$0: ERROR: No identities found" >&2
exit 1
fi
if [ "$#" -lt 1 ] || [ "$1" = "-h" ] || [ "$1" = "--help" ]; then
echo "Usage: $0 [-i [identity_file]] [user@]machine" >&2
exit 1
fi
# strip any trailing colon
host=`echo $1 | sed 's/:$//'`
{ eval "$GET_ID" ; } | ssh $host "umask 077; test -d ~/.ssh || mkdir ~/.ssh ; cat >> ~/.ssh/authorized_keys" || exit 1
cat <<EOF
Now try logging into the machine, with "ssh '$host'", and check in:
~/.ssh/authorized_keys
to make sure we haven't added extra keys that you weren't expecting.
EOF
797
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
